The short version
Your archive belongs to you — always. We don’t use your documents to train AI models or share them with anyone. You can export your data anytime, and if you cancel, we delete everything. No questions, no holdbacks. The rest of this policy covers the details.
1. Who we are
ThAD (“The Author’s Doppelgänger”) is a private web service that helps Christian clergy search, summarize, and manage their sermon archives. The service is operated by Marlow Technology Advisors, headquartered in Seattle, Washington, United States of America.
Contact: jim@marlowtechadvisors.com
2. Information we collect
| Category | Examples | How we collect |
|---|---|---|
| Account data | Name, e-mail address, API key | When you sign up or request a key |
| Sermon content | Uploaded Word docs, plain-text sermons, metadata extracted by ThAD | When you upload or paste text |
| Usage data | Search queries, endpoint logs, error traces, time stamps | Automatically via server logs |
| Device data | Browser type, IP address, cookie/session ID | Automatically via HTTP requests |
| Third-party data | Scripture passages from API.Bible; model output from OpenAI | Fetched on your behalf when you invoke those features |
We do not knowingly collect data from children under 13.
3. Why we collect it
| Purpose | Legal basis (GDPR) |
|---|---|
| Provide core features (search, summarize, lectionary, uploads) | Contractual necessity |
| Improve accuracy and troubleshoot errors | Legitimate interest |
| Security, fraud prevention, rate-limiting | Legitimate interest |
| Email you about critical updates | Consent (you may opt out) |
We never use sermon content to train public AI models.
4. How we share information
We share data only with the service providers that make ThAD work:
| Provider | Role | Data exposed |
|---|---|---|
| OpenAI, LLC | Language-model processing | Prompt text & sermon snippets |
| API.Bible | Scripture retrieval | Book/chapter/verse references |
| Render.com | Server hosting & storage | Encrypted databases & log files |
All vendors are bound by confidentiality agreements and process data exclusively under our instructions.
5. Storage & security
- Data in transit: TLS 1.2+
- Data at rest: AES-256 encryption (TinyDB files, backups)
- Access controls: Key-based auth; least-privilege for engineers
- Backups: Encrypted nightly snapshots retained for 30 days
6. Data retention
| Data type | Retention period |
|---|---|
| Sermon content & metadata | Until you delete it or your account is inactive for 24 months |
| Access logs | 90 days |
| Error/debug logs | 30 days (unless needed for investigation) |
You may request deletion at any time via privacy@thadapp.com.
7. Your rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you
- Rectify inaccurate or incomplete data
- Delete your data (“right to be forgotten”)
- Export data in a machine-readable format
- Object to or restrict certain processing
To exercise any right, email privacy@thadapp.com. We will respond within 30 days.
8. International transfers
ThAD’s servers are currently located in USA region. If you access the service from outside the United States, you consent to transferring your information to our U.S. servers.
9. Cookies & tracking
We use a single session cookie (thad_session) for authentication. No third-party analytics or advertising cookies are set.
10. Changes to this policy
We may update this Privacy Policy from time to time. If changes are material, we will notify you by email or in-app banner at least 14 days before the new terms take effect.
11. Contact us
Questions or concerns?
Marlow Technology Advisors – Privacy Team
privacy@thadapp.com